The following Fedora 18 Security updates need testing: Age URL 196 https://admin.fedoraproject.org/updates/FEDORA-2013-0416/fedora-business-cards-1-0.1.beta1.fc18 130 https://admin.fedoraproject.org/updates/FEDORA-2013-3935/puppet-3.1.1-1.fc18 123 https://admin.fedoraproject.org/updates/FEDORA-2013-4243/stunnel-4.55-1.fc18 110 https://admin.fedoraproject.org/updates/FEDORA-2013-4823/microcode_ctl-2.0-3.fc18 95 https://admin.fedoraproject.org/updates/FEDORA-2013-6117/eucalyptus-3.2.2-1.fc18 49 https://admin.fedoraproject.org/updates/FEDORA-2013-9962/subversion-1.7.10-1.fc18 30 https://admin.fedoraproject.org/updates/FEDORA-2013-10713/openstack-keystone-2012.2.4-5.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-13131/livecd-tools-18.17-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-13166/fdupes-1.51-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-13164/owncloud-4.5.13-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-13140/python-pip-1.3.1-4.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-13234/rubygem-passenger-3.0.21-4.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-13388/ghc-xmonad-contrib-0.11-1.1.fc18,bluetile-0.6-13.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13454/WebCalendar-1.2.7-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13479/openttd-1.3.0-2.fc18,pyicu-1.4-2.fc18,fontmatrix-0.9.99-9.r1218.fc18,libreoffice-3.6.7.2-3.fc18,icu-49.1.1-10.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13493/squid-3.2.13-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13518/kde-workspace-4.10.5-3.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 164 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18 45 https://admin.fedoraproject.org/updates/FEDORA-2013-10428/NetworkManager-0.9.8.2-1.fc18,network-manager-applet-0.9.8.2-1.fc18 11 https://admin.fedoraproject.org/updates/FEDORA-2013-12922/device-mapper-persistent-data-0.2.1-1.fc18 11 https://admin.fedoraproject.org/updates/FEDORA-2013-12915/sane-backends-1.0.23-13.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-12979/squashfs-tools-4.3-0.18.gitaae0aff4.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-13016/opus-1.0.3-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-13024/emacs-24.2-20.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-13131/livecd-tools-18.17-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-13171/soprano-2.9.3-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-13146/qtwebkit-2.3.2-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-13208/shared-desktop-ontologies-0.11.0-1.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-13230/chrony-1.28-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13502/nss-util-3.15.1-1.fc18,nss-softokn-3.15.1-1.fc18,nss-3.15.1-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13518/kde-workspace-4.10.5-3.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13479/openttd-1.3.0-2.fc18,pyicu-1.4-2.fc18,fontmatrix-0.9.99-9.r1218.fc18,libreoffice-3.6.7.2-3.fc18,icu-49.1.1-10.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13462/exempi-2.2.1-1.fc18 The following builds have been pushed to Fedora 18 updates-testing WebCalendar-1.2.7-1.fc18 babeltrace-1.1.1-1.fc18 dkms-2.2.0.3-14.fc18 exempi-2.2.1-1.fc18 fontmatrix-0.9.99-9.r1218.fc18 ghc-concatenative-1.0.1-1.fc18 ghc-libxml-sax-0.7.4-2.fc18 icu-49.1.1-10.fc18 iptraf-ng-1.1.4-1.fc18 kde-workspace-4.10.5-3.fc18 kmix-4.10.5-2.fc18 libksane-4.10.5-3.fc18 libreoffice-3.6.7.2-3.fc18 lttng-ust-2.0.8-1.fc18 nodejs-require-all-0.0.6-1.fc18 nss-3.15.1-1.fc18 nss-softokn-3.15.1-1.fc18 nss-util-3.15.1-1.fc18 oath-toolkit-2.4.0-1.fc18 openblas-0.2.7-1.fc18 openttd-1.3.0-2.fc18 openvswitch-1.10.0-5.fc18 pcapfix-0.7.3-2.fc18 perl-Storm-0.240-1.fc18 perl-Wx-GLCanvas-0.09-2.fc18 powertop-2.4-1.fc18 pspp-0.8.0-1.fc18 pyicu-1.4-2.fc18 python-django-ckeditor-4.0.2-3.fc18 python-matplotlib-1.2.0-14.fc18 python-pdfrw-0.1-2.fc18 python-pycparser-2.09.1-5.fc18 python-tinycss-0.3-1.fc18 rst2pdf-0.93-1.fc18 squid-3.2.13-1.fc18 tesseract-3.02.02-1.fc18 tesseract-langpack-3.02-6.fc18 userspace-rcu-0.7.7-1.fc18 vzctl-4.4-1.fc18 vzctl-4.4-2.fc18 Details about builds: ================================================================================ WebCalendar-1.2.7-1.fc18 (FEDORA-2013-13454) Single/multi-user web-based calendar application -------------------------------------------------------------------------------- Update Information: * Tue Jul 23 2013 Patrick Monnerat <pm@xxxxxxxxxxxxx> 1.2.7-1 - New upstream release (security fixes). -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Patrick Monnerat <pm@xxxxxxxxxxxxx> 1.2.7-1 - New upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #987149 - WebCalendar: multiple flaws fixed in version 1.2.7 https://bugzilla.redhat.com/show_bug.cgi?id=987149 -------------------------------------------------------------------------------- ================================================================================ babeltrace-1.1.1-1.fc18 (FEDORA-2013-13515) Trace Viewer and Converter, mainly for the Common Trace Format -------------------------------------------------------------------------------- Update Information: New upstream bugfix release New upstream release and patching package to allow the usage of pkg-config on fedora -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 Yannick Brosseau <yannick.brosseau@xxxxxxxxx> - 1.1.1-1 - New upstream bugfix release * Tue May 28 2013 Yannick Brosseau <yannick.brosseau@xxxxxxxxx> - 1.1.0-1 - New upstream release - Patch babeltrace.pc to not depends on popt.pc, as it does not exist in Fedora * Tue Feb 26 2013 Yannick Brosseau <yannick.brosseau@xxxxxxxxx> - 1.0.3-1 - New upstream release - Add pkg-config file to devel package (#913895) * Fri Jan 18 2013 Yannick Brosseau <yannick.brosseau@xxxxxxxxx> - 1.0.2-1 - New upstream release -------------------------------------------------------------------------------- ================================================================================ dkms-2.2.0.3-14.fc18 (FEDORA-2013-13474) Dynamic Kernel Module Support Framework -------------------------------------------------------------------------------- Update Information: Removed systemd / SysV conversion as per new packaging guidelines, do not use lib64 for storing data as it was in 2.2.0.3-5 (hardcoded paths in dkms scripts), add patches for #986557 and #986887, make service file more verbose. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 Simone Caronni <negativo17@xxxxxxxxx> - 2.2.0.3-14 - Remove systemd / SysV conversion as per new packaging guidelines. - Add patch for #986887 to force tarball creation. * Mon Jul 22 2013 Simone Caronni <negativo17@xxxxxxxxx> - 2.2.0.3-13 - Add fix for #986887; do not use lib64 for storing data as it was in 2.2.0.3-5. * Sun Jul 21 2013 Simone Caronni <negativo17@xxxxxxxxx> - 2.2.0.3-12 - Add patch for #986557. * Thu Jul 4 2013 Simone Caronni <negativo17@xxxxxxxxx> - 2.2.0.3-11 - Make service file more verbose. * Sat Jun 29 2013 Simone Caronni <negativo17@xxxxxxxxx> - 2.2.0.3-10 - Fix SysV/systemd upgrade. * Wed Jun 26 2013 Simone Caronni <negativo17@xxxxxxxxx> - 2.2.0.3-9 - Update systemd requirements. -------------------------------------------------------------------------------- References: [ 1 ] Bug #986557 - POST_BUILD ignored by dkms. https://bugzilla.redhat.com/show_bug.cgi?id=986557 [ 2 ] Bug #986887 - mkrpm fails on x86_64 https://bugzilla.redhat.com/show_bug.cgi?id=986887 -------------------------------------------------------------------------------- ================================================================================ exempi-2.2.1-1.fc18 (FEDORA-2013-13462) Library for easy parsing of XMP metadata -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. Main new feature of note to Fedora is the inclusion of exempi man page -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 Deji Akingunola <dakingun@xxxxxxxxx> - 2.2.1-1 - Update to version 2.2.1 -------------------------------------------------------------------------------- ================================================================================ fontmatrix-0.9.99-9.r1218.fc18 (FEDORA-2013-13479) A fonts manager -------------------------------------------------------------------------------- Update Information: This is an update for icu. Unfortunately, one of the fixes adds a new virtual function to LayoutEngine class, breaking ABI. So dependent packages have to be updated too. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 David Tardon <dtardon@xxxxxxxxxx> - 0.9.99-9.r1218 - rebuild for ICU ABI break -------------------------------------------------------------------------------- References: [ 1 ] Bug #952656 - CVE-2013-2419 ICU: Layout Engine font processing errors (JDK 2D, 8001031) https://bugzilla.redhat.com/show_bug.cgi?id=952656 [ 2 ] Bug #952708 - CVE-2013-2383 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986) https://bugzilla.redhat.com/show_bug.cgi?id=952708 [ 3 ] Bug #952709 - CVE-2013-2384 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987) https://bugzilla.redhat.com/show_bug.cgi?id=952709 [ 4 ] Bug #952711 - CVE-2013-1569 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994) https://bugzilla.redhat.com/show_bug.cgi?id=952711 -------------------------------------------------------------------------------- ================================================================================ ghc-concatenative-1.0.1-1.fc18 (FEDORA-2013-13527) A library for postfix control flow -------------------------------------------------------------------------------- Update Information: New package: ghc-concatenative -------------------------------------------------------------------------------- References: [ 1 ] Bug #982182 - Review Request: ghc-concatenative - A library for postfix control flow https://bugzilla.redhat.com/show_bug.cgi?id=982182 -------------------------------------------------------------------------------- ================================================================================ ghc-libxml-sax-0.7.4-2.fc18 (FEDORA-2013-13449) Haskell bindings for the libxml2 SAX interface -------------------------------------------------------------------------------- Update Information: Haskell bindings for the libxml2 SAX interface. -------------------------------------------------------------------------------- References: [ 1 ] Bug #962251 - Review Request: ghc-libxml-sax - Haskell bindings for the libxml2 SAX interface https://bugzilla.redhat.com/show_bug.cgi?id=962251 -------------------------------------------------------------------------------- ================================================================================ icu-49.1.1-10.fc18 (FEDORA-2013-13479) International Components for Unicode -------------------------------------------------------------------------------- Update Information: This is an update for icu. Unfortunately, one of the fixes adds a new virtual function to LayoutEngine class, breaking ABI. So dependent packages have to be updated too. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 Eike Rathke <erack@xxxxxxxxxx> - 49.1.1-10 - Resolves: rhbz#986814 install icu-config.sh from source2 * Wed Jul 17 2013 Eike Rathke <erack@xxxxxxxxxx> - 49.1.1-9 - Resolves: rhbz#966141 various flaws in Layout Engine font processing - Resolves: rhbz#966077 aarch64 support for icu-config.sh wrapper -------------------------------------------------------------------------------- References: [ 1 ] Bug #952656 - CVE-2013-2419 ICU: Layout Engine font processing errors (JDK 2D, 8001031) https://bugzilla.redhat.com/show_bug.cgi?id=952656 [ 2 ] Bug #952708 - CVE-2013-2383 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986) https://bugzilla.redhat.com/show_bug.cgi?id=952708 [ 3 ] Bug #952709 - CVE-2013-2384 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987) https://bugzilla.redhat.com/show_bug.cgi?id=952709 [ 4 ] Bug #952711 - CVE-2013-1569 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994) https://bugzilla.redhat.com/show_bug.cgi?id=952711 -------------------------------------------------------------------------------- ================================================================================ iptraf-ng-1.1.4-1.fc18 (FEDORA-2013-13466) A console-based network monitoring utility -------------------------------------------------------------------------------- Update Information: It took me long time to release brand new iptraf-ng. pick it up, test it and file bugs. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Nikola Pajkovsky <npajkovs@xxxxxxxxxx> - 1.1.4 - new upstream iptraf-ng-1.1.4 * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1.3.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #825793 - iptraf-ng do not logs and not work in background https://bugzilla.redhat.com/show_bug.cgi?id=825793 [ 2 ] Bug #839248 - iptraf-ng cannot monitor ppp0 https://bugzilla.redhat.com/show_bug.cgi?id=839248 [ 3 ] Bug #863514 - *** glibc detected *** /usr/sbin/iptraf-ng: double free or corruption (!prev): 0x000000000086df40 *** https://bugzilla.redhat.com/show_bug.cgi?id=863514 [ 4 ] Bug #863594 - uses invalid memory https://bugzilla.redhat.com/show_bug.cgi?id=863594 [ 5 ] Bug #978433 - iptraf-ng core dumps when strarting to do the actual trace https://bugzilla.redhat.com/show_bug.cgi?id=978433 -------------------------------------------------------------------------------- ================================================================================ kde-workspace-4.10.5-3.fc18 (FEDORA-2013-13518) KDE Workspace -------------------------------------------------------------------------------- Update Information: This update addresses 2 issues: * backport systray icons memleak fix ( http://bugs.kde.org/314919 ) * backport potential kcheckpass security issue ( http://git.reviewboard.kde.org/r/111261 ) -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 11 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.10.5-3 - backport systray icons memleak fix (kde #314919) - backport potential kcheckpass security issue -------------------------------------------------------------------------------- ================================================================================ kmix-4.10.5-2.fc18 (FEDORA-2013-13482) KDE volume control -------------------------------------------------------------------------------- Update Information: Backport upstream fix for memory leak on media track changes (when using default oxygen widget theme) -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 11 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.10.5-2 - backport memleak-on-track-change fix (kde#309464, #912457) -------------------------------------------------------------------------------- References: [ 1 ] Bug #912457 - Kmix eats a lot of memory https://bugzilla.redhat.com/show_bug.cgi?id=912457 -------------------------------------------------------------------------------- ================================================================================ libksane-4.10.5-3.fc18 (FEDORA-2013-13465) SANE Library interface for KDE -------------------------------------------------------------------------------- Update Information: Fix/improve KSaneConfig.cmake to allow apps to build against it. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 16 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.10.5-3 - fix typo in ksaneconfig.patch * Sat Jul 13 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.10.5-2 - fix KSaneConfig.cmake -------------------------------------------------------------------------------- ================================================================================ libreoffice-3.6.7.2-3.fc18 (FEDORA-2013-13479) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information: This is an update for icu. Unfortunately, one of the fixes adds a new virtual function to LayoutEngine class, breaking ABI. So dependent packages have to be updated too. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 Eike Rathke <erack@xxxxxxxxxx> - 1:3.6.7.2-3 - force rebuild with icu-49.1.1-10.fc18 -------------------------------------------------------------------------------- References: [ 1 ] Bug #952656 - CVE-2013-2419 ICU: Layout Engine font processing errors (JDK 2D, 8001031) https://bugzilla.redhat.com/show_bug.cgi?id=952656 [ 2 ] Bug #952708 - CVE-2013-2383 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986) https://bugzilla.redhat.com/show_bug.cgi?id=952708 [ 3 ] Bug #952709 - CVE-2013-2384 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987) https://bugzilla.redhat.com/show_bug.cgi?id=952709 [ 4 ] Bug #952711 - CVE-2013-1569 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994) https://bugzilla.redhat.com/show_bug.cgi?id=952711 -------------------------------------------------------------------------------- ================================================================================ lttng-ust-2.0.8-1.fc18 (FEDORA-2013-13460) LTTng Userspace Tracer library -------------------------------------------------------------------------------- Update Information: New upstream bugfix release -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 Yannick Brosseau <yannick.brosseau@xxxxxxxxx> - 2.0.8-1 - New upstream bugfix release -------------------------------------------------------------------------------- ================================================================================ nodejs-require-all-0.0.6-1.fc18 (FEDORA-2013-13469) Require all files within a directory -------------------------------------------------------------------------------- Update Information: Newpackage -------------------------------------------------------------------------------- References: [ 1 ] Bug #966221 - Review Request: nodejs-require-all - Require all files within a directory https://bugzilla.redhat.com/show_bug.cgi?id=966221 -------------------------------------------------------------------------------- ================================================================================ nss-3.15.1-1.fc18 (FEDORA-2013-13502) Network Security Services -------------------------------------------------------------------------------- Update Information: Update of the nss packages, nss, nss-util, and nss-softokn, to nss-3.15.1. Please find the upstream release notes for nss-3.15.1 at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.1_release_notes and the release notes for nss-3.15 at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15_release_notes With this update, man pages for the nss security tools are installed in the system. This documentation is still work in progress. Please contribute to the upstream review at https://bugzilla.mozilla.org/show_bug.cgi?id=836477 -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 21 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15.1-1 - Update to NSS_3_15_1_RTM - Enable iquote.patch to access newly introduced types - Install man pages for nss-config and setup-nsssysinit - Resolves: rhbz#606020 - nss security tools lack man pages - Resolves: rhbz#689918 -build nss without softoken or util sources in the tree - Fix NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH generation for nss-config -------------------------------------------------------------------------------- References: [ 1 ] Bug #689918 - Build NSS without any softoken or util sources present in the tree https://bugzilla.redhat.com/show_bug.cgi?id=689918 [ 2 ] Bug #606020 - nss security tools lack man pages https://bugzilla.redhat.com/show_bug.cgi?id=606020 -------------------------------------------------------------------------------- ================================================================================ nss-softokn-3.15.1-1.fc18 (FEDORA-2013-13502) Network Security Services Softoken Module -------------------------------------------------------------------------------- Update Information: Update of the nss packages, nss, nss-util, and nss-softokn, to nss-3.15.1. Please find the upstream release notes for nss-3.15.1 at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.1_release_notes and the release notes for nss-3.15 at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15_release_notes With this update, man pages for the nss security tools are installed in the system. This documentation is still work in progress. Please contribute to the upstream review at https://bugzilla.mozilla.org/show_bug.cgi?id=836477 -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 2 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15.1-1 - Update to NSS_3_15_1_RTM * Mon Jun 17 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15-3 - Update to NSS_3_15_RTM - Require nspr-4.10 or greater - Fix patch that selects tests to run * Tue Apr 23 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15-0.1.beta.3 - Reverse the last changes since pk11gcmtest properly belongs to nss * Tue Apr 23 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15-0.1.beta.2 - Add lowhashtest and pk11gcmtest as unsupported tools - Modify nss-softoken-split script to include them in the split * Fri Apr 5 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15-0.1.beta.1 - Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scrips on account of a shallwer source tree -------------------------------------------------------------------------------- References: [ 1 ] Bug #689918 - Build NSS without any softoken or util sources present in the tree https://bugzilla.redhat.com/show_bug.cgi?id=689918 [ 2 ] Bug #606020 - nss security tools lack man pages https://bugzilla.redhat.com/show_bug.cgi?id=606020 -------------------------------------------------------------------------------- ================================================================================ nss-util-3.15.1-1.fc18 (FEDORA-2013-13502) Network Security Services Utilities Library -------------------------------------------------------------------------------- Update Information: Update of the nss packages, nss, nss-util, and nss-softokn, to nss-3.15.1. Please find the upstream release notes for nss-3.15.1 at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.1_release_notes and the release notes for nss-3.15 at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15_release_notes With this update, man pages for the nss security tools are installed in the system. This documentation is still work in progress. Please contribute to the upstream review at https://bugzilla.mozilla.org/show_bug.cgi?id=836477 -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 2 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15.1-1 - Update to NSS_3_15_1_RTM * Wed May 29 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15-1 - Update to NSS_3_15_RTM * Fri Apr 19 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15-0.1.beta1.2 - Don't include prtypes.h from hasht.t - Resolves: rhbz#953277 - rawhide build of glibc fails due to fatal error from nss3/hasht.h * Fri Apr 5 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15.beta1-0.1.beta.1 - Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scripts on account of a shallower source tree -------------------------------------------------------------------------------- References: [ 1 ] Bug #689918 - Build NSS without any softoken or util sources present in the tree https://bugzilla.redhat.com/show_bug.cgi?id=689918 [ 2 ] Bug #606020 - nss security tools lack man pages https://bugzilla.redhat.com/show_bug.cgi?id=606020 -------------------------------------------------------------------------------- ================================================================================ oath-toolkit-2.4.0-1.fc18 (FEDORA-2013-13510) One-time password components -------------------------------------------------------------------------------- Update Information: This is new version that adds new API methods for validating TOTP OTPs, for details see original upstream announcement: http://www.nongnu.org/oath-toolkit/NEWS.html This is new version that fixes several bugs, for details see http://www.nongnu.org/oath-toolkit/NEWS.html -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.4.0-1 - New version Resolves: rhbz#987378 * Wed Jul 10 2013 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.2.0-1 - New version Resolves: rhbz#982986 -------------------------------------------------------------------------------- References: [ 1 ] Bug #987378 - oath-toolkit-2.4.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=987378 [ 2 ] Bug #982986 - oath-toolkit-2.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=982986 -------------------------------------------------------------------------------- ================================================================================ openblas-0.2.7-1.fc18 (FEDORA-2013-13520) An optimized BLAS library based on GotoBLAS2 -------------------------------------------------------------------------------- Update Information: Update to 0.2.7. Restored OpenBLAS LAPACK functions instead of netlib ones. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 0.2.7-1 - Update to 0.2.7. - Use OpenBLAS versions of LAPACK functions, as they seem to be working now. -------------------------------------------------------------------------------- ================================================================================ openttd-1.3.0-2.fc18 (FEDORA-2013-13479) Transport system simulation game -------------------------------------------------------------------------------- Update Information: This is an update for icu. Unfortunately, one of the fixes adds a new virtual function to LayoutEngine class, breaking ABI. So dependent packages have to be updated too. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 David Tardon <dtardon@xxxxxxxxxx> - 1.3.0-2 - rebuild for ICU ABI break -------------------------------------------------------------------------------- References: [ 1 ] Bug #952656 - CVE-2013-2419 ICU: Layout Engine font processing errors (JDK 2D, 8001031) https://bugzilla.redhat.com/show_bug.cgi?id=952656 [ 2 ] Bug #952708 - CVE-2013-2383 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986) https://bugzilla.redhat.com/show_bug.cgi?id=952708 [ 3 ] Bug #952709 - CVE-2013-2384 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987) https://bugzilla.redhat.com/show_bug.cgi?id=952709 [ 4 ] Bug #952711 - CVE-2013-1569 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994) https://bugzilla.redhat.com/show_bug.cgi?id=952711 -------------------------------------------------------------------------------- ================================================================================ openvswitch-1.10.0-5.fc18 (FEDORA-2013-13471) Open vSwitch daemon/database/utilities -------------------------------------------------------------------------------- Update Information: Updated sysconfig template file -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Thomas Graf <tgraf@xxxxxxxxxx> - 1.10.0-5 - Typo * Tue Jul 23 2013 Thomas Graf <tgraf@xxxxxxxxxx> - 1.10.0-4 - Spec file fixes - Maintain local copy of sysconfig.template * Thu Jul 18 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 1.10.0-3 - Perl 5.18 rebuild * Mon Jul 1 2013 Thomas Graf <tgraf@xxxxxxxxxx> - 1.10.0-2 - Enable PIE (#955181) - Provide native systemd unit files (#818754) -------------------------------------------------------------------------------- ================================================================================ pcapfix-0.7.3-2.fc18 (FEDORA-2013-13500) A tool for repairing corrupted pcap files -------------------------------------------------------------------------------- Update Information: New RPM. -------------------------------------------------------------------------------- References: [ 1 ] Bug #975701 - Review Request: pcapfix - A tool for repairing corrupted pcap files https://bugzilla.redhat.com/show_bug.cgi?id=975701 -------------------------------------------------------------------------------- ================================================================================ perl-Storm-0.240-1.fc18 (FEDORA-2013-13480) Object-relational mapping -------------------------------------------------------------------------------- Update Information: New RPM. -------------------------------------------------------------------------------- References: [ 1 ] Bug #979792 - Review Request: perl-Storm - Object-relational mapping https://bugzilla.redhat.com/show_bug.cgi?id=979792 -------------------------------------------------------------------------------- ================================================================================ perl-Wx-GLCanvas-0.09-2.fc18 (FEDORA-2013-13529) Interface to wxWidgets' OpenGL canvas -------------------------------------------------------------------------------- Update Information: Interface to wxWidgets' OpenGL canvas -------------------------------------------------------------------------------- References: [ 1 ] Bug #978010 - Review Request: perl-Wx-GLCanvas - Interface to wxWidgets' OpenGL canvas https://bugzilla.redhat.com/show_bug.cgi?id=978010 -------------------------------------------------------------------------------- ================================================================================ powertop-2.4-1.fc18 (FEDORA-2013-13495) Power consumption monitor -------------------------------------------------------------------------------- Update Information: This is an update that fixes several bugs and introduces new features, for details see upstream announcement: http://01.org/powertop/downloads/2013/powertop-v2.4 -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.4-1 - New version Resolves: rhbz#987404 * Fri Jun 28 2013 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.3-4 - Added check if ondemand governor is applicable (by ondemand-check patch) Resolves: rhbz#697273 * Tue Jun 25 2013 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.3-3 - Added workload option to the man page * Wed Apr 10 2013 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.3-2 - Added post requirements for coreutils -------------------------------------------------------------------------------- References: [ 1 ] Bug #987404 - powertop-2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=987404 -------------------------------------------------------------------------------- ================================================================================ pspp-0.8.0-1.fc18 (FEDORA-2013-13519) A program for statistical analysis of sampled data -------------------------------------------------------------------------------- Update Information: * Ver. 0.8.0 -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0.8.0-1 - Ver. 0.8.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #987405 - pspp-0.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=987405 -------------------------------------------------------------------------------- ================================================================================ pyicu-1.4-2.fc18 (FEDORA-2013-13479) Python extension wrapping IBM's ICU C++ libraries -------------------------------------------------------------------------------- Update Information: This is an update for icu. Unfortunately, one of the fixes adds a new virtual function to LayoutEngine class, breaking ABI. So dependent packages have to be updated too. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 David Tardon <dtardon@xxxxxxxxxx> - 1.4-2 - rebuild for ICU ABI break -------------------------------------------------------------------------------- References: [ 1 ] Bug #952656 - CVE-2013-2419 ICU: Layout Engine font processing errors (JDK 2D, 8001031) https://bugzilla.redhat.com/show_bug.cgi?id=952656 [ 2 ] Bug #952708 - CVE-2013-2383 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986) https://bugzilla.redhat.com/show_bug.cgi?id=952708 [ 3 ] Bug #952709 - CVE-2013-2384 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987) https://bugzilla.redhat.com/show_bug.cgi?id=952709 [ 4 ] Bug #952711 - CVE-2013-1569 ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994) https://bugzilla.redhat.com/show_bug.cgi?id=952711 -------------------------------------------------------------------------------- ================================================================================ python-django-ckeditor-4.0.2-3.fc18 (FEDORA-2013-13507) Django admin CKEditor integration -------------------------------------------------------------------------------- Update Information: First import of python-django-ckeditor in Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #982077 - Review Request: python-django-ckeditor - Django admin CKEditor integration https://bugzilla.redhat.com/show_bug.cgi?id=982077 -------------------------------------------------------------------------------- ================================================================================ python-matplotlib-1.2.0-14.fc18 (FEDORA-2013-13451) Python 2D plotting library -------------------------------------------------------------------------------- Update Information: Correctly install python3 files in package python3-matplotlib-qt4 and fix a unicode error also on python3. Make stix-fonts a requires of matplotlib (#928326) Use stix fonts avoid problems with missing cm fonts (#908717). Correct type mismatch in python3 font_manager (#912843, #928326) -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 10 2013 Jon Ciesla <limburgher@xxxxxxxxx> - 1.2.0-14 - agg rebuild. * Wed Apr 10 2013 Thomas Spura <tomspur@xxxxxxxxxxxxxxxxx> - 1.2.0-13 - use python3 version in python3-matplotlib-qt4 (#915727) - include __pycache__ files in correct subpackages on python3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #915727 - python3-matplotlib-qt4 installs in /usr/lib64/python2.7 instead of python3.3 https://bugzilla.redhat.com/show_bug.cgi?id=915727 [ 2 ] Bug #928326 - fontconfig problem with python3-matplotlib https://bugzilla.redhat.com/show_bug.cgi?id=928326 [ 3 ] Bug #908717 - mathtext fonts missing? https://bugzilla.redhat.com/show_bug.cgi?id=908717 [ 4 ] Bug #912843 - run time Type error while calling show() to plot any graph, due to type mismatch in font_manager.py https://bugzilla.redhat.com/show_bug.cgi?id=912843 -------------------------------------------------------------------------------- ================================================================================ python-pdfrw-0.1-2.fc18 (FEDORA-2013-13450) Python library to read and write PDF files -------------------------------------------------------------------------------- Update Information: Upgrade to 0.93 with lots of bugfixes, changelog here: https://code.google.com/p/rst2pdf/downloads/detail?name=rst2pdf-0.93.tar.gz&can=2&q= -------------------------------------------------------------------------------- References: [ 1 ] Bug #987296 - Please upgrade package to 0.93 https://bugzilla.redhat.com/show_bug.cgi?id=987296 -------------------------------------------------------------------------------- ================================================================================ python-pycparser-2.09.1-5.fc18 (FEDORA-2013-13475) C parser and AST generator written in Python -------------------------------------------------------------------------------- Update Information: C parser and AST generator written in Python -------------------------------------------------------------------------------- References: [ 1 ] Bug #833226 - Review Request: python-pycparser - C parser and AST generator written in Python https://bugzilla.redhat.com/show_bug.cgi?id=833226 -------------------------------------------------------------------------------- ================================================================================ python-tinycss-0.3-1.fc18 (FEDORA-2013-13498) CSS parser for Python -------------------------------------------------------------------------------- Update Information: CSS parser for Python -------------------------------------------------------------------------------- References: [ 1 ] Bug #986630 - Review Request: python-tinycss - CSS parser for Python https://bugzilla.redhat.com/show_bug.cgi?id=986630 -------------------------------------------------------------------------------- ================================================================================ rst2pdf-0.93-1.fc18 (FEDORA-2013-13450) Tool for transforming reStructuredText to PDF -------------------------------------------------------------------------------- Update Information: Upgrade to 0.93 with lots of bugfixes, changelog here: https://code.google.com/p/rst2pdf/downloads/detail?name=rst2pdf-0.93.tar.gz&can=2&q= -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Sergio Pascual <sergiopr at fedoraproject.org> - 0.93-1 - New upstream version 0.93 * Fri Dec 7 2012 Sergio Pascual <sergiopr at fedoraproject.org> - 0.92-4 - Fix wrong URL -------------------------------------------------------------------------------- References: [ 1 ] Bug #987296 - Please upgrade package to 0.93 https://bugzilla.redhat.com/show_bug.cgi?id=987296 -------------------------------------------------------------------------------- ================================================================================ squid-3.2.13-1.fc18 (FEDORA-2013-13493) The Squid proxy caching server -------------------------------------------------------------------------------- Update Information: This is security update that fixes CVE-2013-4123. This update provides latest stable version of Squid cache software. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 22 2013 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.3.8-1 - Update to latest upstream version 3.2.13 - Fixed: CVE-2013-4123 * Fri May 3 2013 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.2.11-1 - Update to latest upstream version 3.2.11 * Tue Apr 23 2013 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.2.9-2 - Option '-k' is not stated in squidclient man - Remove pid from service file(#913262) -------------------------------------------------------------------------------- References: [ 1 ] Bug #984632 - CVE-2013-4123 squid: Denial of service when processing specially-crafted HTTP requests (SQUID-2013:3) https://bugzilla.redhat.com/show_bug.cgi?id=984632 -------------------------------------------------------------------------------- ================================================================================ tesseract-3.02.02-1.fc18 (FEDORA-2013-6888) Raw OCR Engine -------------------------------------------------------------------------------- Update Information: Update to v3.02.02 Apply pkg-config patch -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 27 2013 Karol Trzcionka <karlik at fedoraproject.org> - 3.02.02-1 - Update to v3.02.02 - Apply pkgconfig patch rhbz#904806 * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.01-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ tesseract-langpack-3.02-6.fc18 (FEDORA-2013-6888) Langpacks for tesseract -------------------------------------------------------------------------------- Update Information: Update to v3.02.02 Apply pkg-config patch -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 19 2013 Karol Trzcionka <karlik at fedoraproject.org> - 3.02-6 - Fix typo in -jpn subpackage * Fri Jun 28 2013 Karol Trzcionka <karlik at fedoraproject.org> - 3.02-5 - Obsolete old langpacks (bz#978706) * Fri Jun 28 2013 Karol Trzcionka <karlik at fedoraproject.org> - 3.02-4 - Add support for 2-letter iso-codes for langpacks (thanks to Parag Nemade) * Thu May 9 2013 Karol Trzcionka <karlik at fedoraproject.org> - 3.02-3 - Fix dependencies * Sun Apr 28 2013 Karol Trzcionka <karlik at fedoraproject.org> - 3.02-2 - Fix path - Add disttag * Sat Apr 27 2013 Karol Trzcionka <karlik at fedoraproject.org> - 3.02-1 - Update to v3.02 * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.00-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ userspace-rcu-0.7.7-1.fc18 (FEDORA-2013-13514) RCU (read-copy-update) implementation in user space -------------------------------------------------------------------------------- Update Information: New upstream bugfix release -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 5 2013 Yannick Brosseau <yannick.brosseau@xxxxxxxxx> - 0.7.7-1 - New upstream version * Fri Jan 18 2013 Yannick Brosseau <yannick.brosseau@xxxxxxxxx> - 0.7.6-1 - New upstream version -------------------------------------------------------------------------------- ================================================================================ vzctl-4.4-1.fc18 (FEDORA-2013-13521) OpenVZ containers control utility -------------------------------------------------------------------------------- Update Information: Update to 4.4 ( changelog: http://openvz.org/Download/vzctl/4.4/changes ) -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 19 2013 Igor Gnatenko <i.gnatenko.brain@xxxxxxxxx> - 4.4-1 - Update to 4.4 ( changelog: http://openvz.org/Download/vzctl/4.4/changes ) - fix spec: macros instead of bash variables - fix spec: add crtools as requirements - fix spec: drop bash from requirements (rpm automatically picks up /bin/sh) - fix spec: other fixes -------------------------------------------------------------------------------- ================================================================================ vzctl-4.4-2.fc18 (FEDORA-2013-13491) OpenVZ containers control utility -------------------------------------------------------------------------------- Update Information: - crtools requirements only for x86_64 arch - Update to 4.4 ( changelog: http://openvz.org/Download/vzctl/4.4/changes ) -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 23 2013 Igor Gnatenko <i.gnatenko.brain@xxxxxxxxx> - 4.4-2 - crtools requirements only for x86_64 arch (wiki page with known issues updated) * Fri Jul 19 2013 Igor Gnatenko <i.gnatenko.brain@xxxxxxxxx> - 4.4-1 - Update to 4.4 ( changelog: http://openvz.org/Download/vzctl/4.4/changes ) - fix spec: macros instead of bash variables - fix spec: add crtools as requirements - fix spec: drop bash from requirements (rpm automatically picks up /bin/sh) - fix spec: other fixes -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
